Wind River Support Network

HomeDefectsLIN6-14078
Fixed

LIN6-14078 : Security Advisory - linux - CVE-2017-8824

Created: Dec 14, 2017    Updated: Mar 18, 2019
Resolved Date: Apr 13, 2018
Found In Version: 6.0.0.35
Fix Version: 6.0.0.37
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Kernel

Description

The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.

https://nvd.nist.gov/vuln/detail/CVE-2017-8824

Other Downloads


Live chat
Online